CVE-2019-9003

In the Linux kernel before 4.20.5, attackers can trigger adrivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arrangingfor certain simultaneous execution of the code, as demonstrated by a"service ipmievd restart" loop.

Ubuntu-Description

It was discovered that a use-after-free vulnerability existed in the IPMIimplementation in the Linux kernel. A local attacker with access to theIPMI character device files could use this to cause a denial of service(system crash).